Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

protect ports on redundant switches

I have two 3750G which are trunked together. We want to connect some external router to these switches adn we don't want the routers to talk to each other - only to two firewalls also connected to these switches. Some of hte routers will be on eone switch and some on the other. We will have hSRP on the switch pair. We would going to use protected ports to prevent the routers from talking to each other. If we don't protect the trunk port then the routers on one switch can talk to the other switch. if we do protect the trunk ports will we lose HSRP traffic and will spanning tree still work?

1 REPLY
Cisco Employee

Re: protect ports on redundant switches

What you need is private vlan.

Private vlan is an extension of the old feature Protecter port which was local to one switch. With Private vlan you can extend to 2 or more switches.

See documentation at :

http://www.cisco.com/en/US/partner/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swpvlan.html#wp1038477

and specially the example with private vlan across 2 switches.

Cheers,

Roland

114
Views
0
Helpful
1
Replies
CreatePlease to create content